$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/AC8695B8A60611EE8FEB2160C4F9AE02.roa File: AC8695B8A60611EE8FEB2160C4F9AE02.roa (raw, json) Hash identifier: ib8nYaY5edetahLOziP3ND06MsQfzy3ex3w6zAk8k2E= Subject key identifier: 60:5C:F9:86:97:DE:12:5E:66:19:65:D5:AA:0C:6A:F3:AD:69:5B:F8 Certificate issuer: /CN=A91E1155/serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Certificate serial: 0F55 Authority key identifier: 0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/AC8695B8A60611EE8FEB2160C4F9AE02.roa Signing time: Tue 04 Nov 2025 18:06:36 +0000 ROA not before: Tue 04 Nov 2025 18:06:36 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 146994 IP address blocks: 43.241.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3925 (0xf55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1155, serialNumber=0B2561C4B57DA81D70F39724B0DE2C7101749F5D Validity Not Before: Nov 4 18:06:36 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690a40ab-8bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:eb:b7:ed:ec:52:99:05:a7:7f:8c:d2:87:f3: 8d:e5:b1:dd:a5:1c:f1:70:8d:51:40:4f:94:44:7a: 61:c8:f7:80:4b:9a:af:bd:0e:8d:95:20:34:39:73: 24:a0:bb:8a:fd:b5:7a:3a:47:96:e2:cf:40:ac:65: c6:f5:56:b8:d4:06:a5:ca:37:78:d1:07:f3:5b:9c: 62:88:72:a3:ce:50:a6:49:9f:42:95:50:9b:ea:b3: ed:4d:5e:13:78:98:5e:a3:f4:46:79:d8:85:7f:36: 96:75:d8:6f:47:28:b6:eb:ce:c2:28:6b:20:c3:e2: 36:3e:a1:42:82:9d:ba:17:f3:d8:3e:e8:0e:d1:b5: 42:d0:17:17:51:d4:6c:e7:2d:98:bb:df:ce:3a:89: 75:3f:f7:55:d1:17:99:64:dc:2a:79:d0:c2:37:69: c6:c1:08:2d:06:b9:ab:bc:52:75:a1:2e:d5:66:43: e6:9a:13:99:ea:a6:40:00:ee:f4:69:bd:12:cf:27: 65:3e:6d:bb:27:ad:b1:c9:63:02:92:68:87:d5:08: cd:66:70:2e:46:70:52:90:5a:80:e5:e3:1c:a0:89: b1:cd:ef:da:b4:99:64:39:55:86:a0:ea:b1:83:88: d5:13:59:1d:c7:b3:76:e2:6c:2c:b8:a1:cf:36:06: 20:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:5C:F9:86:97:DE:12:5E:66:19:65:D5:AA:0C:6A:F3:AD:69:5B:F8 X509v3 Authority Key Identifier: keyid:0B:25:61:C4:B5:7D:A8:1D:70:F3:97:24:B0:DE:2C:71:01:74:9F:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/CyVhxLV9qB1w85cksN4scQF0n10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CyVhxLV9qB1w85cksN4scQF0n10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1155/53998A347EB311E9AB9C7B24C4F9AE02/AC8695B8A60611EE8FEB2160C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.245.0/24 Signature Algorithm: sha256WithRSAEncryption cc:a6:9e:8c:20:14:57:49:d4:b5:bf:86:fb:26:14:8c:3a:0a: fe:92:1c:fa:69:43:e5:9c:0a:17:fe:76:7f:25:8b:28:b3:de: 10:bf:74:56:b2:32:69:66:b0:d1:47:b3:88:4a:bd:41:cb:4a: 6f:29:b6:a4:4a:a1:8a:61:4e:4e:85:62:0a:d9:19:c1:57:0a: 82:a6:df:42:ba:95:c4:aa:e6:54:c5:33:99:85:71:72:73:7c: d7:37:94:90:fd:ee:3c:48:84:1d:43:78:aa:e1:84:0f:fa:6a: 37:96:28:47:ac:74:ee:05:9c:ca:46:c3:c9:24:ac:95:9a:9d: c2:72:1a:5e:1d:97:20:62:61:1d:aa:a8:9d:0b:b9:b4:a0:66: 85:4a:76:07:69:7e:ca:c0:a6:29:22:8a:78:99:7b:0f:24:3e: 61:32:bb:d3:e3:f5:94:bc:7f:7f:e1:4e:d1:60:5c:e7:e6:0c: 13:e4:63:c0:5d:0b:3f:5a:71:1c:ff:80:9f:36:47:3c:72:25: fc:8e:73:a3:85:88:11:a2:2b:42:2e:a6:d1:43:76:f3:d2:80: ff:9f:e9:5c:4a:e2:da:f1:a4:5d:ec:d7:fb:69:00:b4:a0:6f: 0a:54:f8:15:1e:3f:20:70:6f:c4:9d:f3:af:6e:ed:ab:01:17: 80:ab:eb:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExNTUxMTAvBgNVBAUTKDBCMjU2MUM0QjU3REE4MUQ3MEYzOTcyNEIwREUyQzcx MDE3NDlGNUQwHhcNMjUxMTA0MTgwNjM2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNDBhYi04YmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eu37exSmQWnf4zSh/ON5bHdpRzxcI1RQE+URHphyPeAS5qvvQ6NlSA0OXMk oLuK/bV6OkeW4s9ArGXG9Va41Aalyjd40QfzW5xiiHKjzlCmSZ9ClVCb6rPtTV4T eJheo/RGediFfzaWddhvRyi2687CKGsgw+I2PqFCgp26F/PYPugO0bVC0BcXUdRs 5y2Yu9/OOol1P/dV0ReZZNwqedDCN2nGwQgtBrmrvFJ1oS7VZkPmmhOZ6qZAAO70 ab0SzydlPm27J62xyWMCkmiH1QjNZnAuRnBSkFqA5eMcoImxze/atJlkOVWGoOqx g4jVE1kdx7N24mwsuKHPNgYg0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGBc+YaX 3hJeZhll1aoMavOtaVv4MB8GA1UdIwQYMBaAFAslYcS1fagdcPOXJLDeLHEBdJ9d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTE1NS81Mzk5OEEzNDdF QjMxMUU5QUI5QzdCMjRDNEY5QUUwMi9DeVZoeExWOXFCMXc4NWNrc040c2NRRjBu MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N5Vmh4TFY5cUIxdzg1Y2tzTjRzY1FGMG4xMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTExNTUvNTM5OThBMzQ3RUIzMTFFOUFCOUM3QjI0QzRGOUFFMDIvQUM4Njk1QjhB NjA2MTFFRThGRUIyMTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr8fUwDQYJKoZIhvcNAQELBQADggEBAMymnowgFFdJ1LW/ hvsmFIw6Cv6SHPppQ+WcChf+dn8liyiz3hC/dFayMmlmsNFHs4hKvUHLSm8ptqRK oYphTk6FYgrZGcFXCoKm30K6lcSq5lTFM5mFcXJzfNc3lJD97jxIhB1DeKrhhA/6 ajeWKEesdO4FnMpGw8kkrJWancJyGl4dlyBiYR2qqJ0LubSgZoVKdgdpfsrApiki iniZew8kPmEyu9Pj9ZS8f3/hTtFgXOfmDBPkY8BdCz9acRz/gJ82RzxyJfyOc6OF iBGiK0IuptFDdvPSgP+f6VxK4trxpF3s1/tpALSgbwpU+BUePyBwb8Sd869u7asB F4Cr66A= -----END CERTIFICATE-----Generated at Wed Nov 5 21:14:40 2025 by rpki-client